I use a field on the form not the web form which lists all the valid fields
that can be submitted via the web form. So I only allow the fields I specified
to be saved.
I also save all the CGI information and parse the content with a bad/swear word
filter.
I use a field on the form not the web form which lists all the valid fields that can be submitted via the web form. So I only allow the fields I specified to be saved.
I also save all the CGI information and parse the content with a bad/swear word filter.
works for me.
regards john z marshall